CN106302519A

CN106302519A - The method of a kind of internet security management and terminal

Info

Publication number: CN106302519A
Application number: CN201610822878.2A
Authority: CN
Inventors: 向攀; 陈澜波
Original assignee: Shenzhen Jinli Communication Equipment Co Ltd
Current assignee: Shenzhen Jinli Communication Equipment Co Ltd
Priority date: 2016-09-13
Filing date: 2016-09-13
Publication date: 2017-01-04

Abstract

The embodiment of the invention discloses method and the terminal of a kind of internet security management, wherein method includes: terminal to server sends the first acquisition request；Receive described server and obtain, according to described first, first network access information and the second network access information that request returns, what described first network accessed that information refers to that described server store carry out network according to the default network address under network under test accesses network access information produced by operation, what described second network access information referred to that described server stores carry out network according to the default network address under preset security network accesses the produced network access information of operation, and described network access information includes accessing script or accessing link；Access information and the matching analysis of described second network access information according to described first network, determine the safety of described network under test.Use the embodiment of the present invention, secure network, the Internet Security of protection user can be connected to according to the demand of user from main separation.

Description

The method of a kind of internet security management and terminal

Technical field

The present invention relates to security technology area, particularly relate to method and the terminal of the management of a kind of internet security.

Background technology

WIFI is Institute of Electrical and Electric Engineers IEEE (Institute of Electrical and ElectronicsEngineers, IEEE) industrial standard (IEEE 802.11) of a wireless communication that defines, it is possible to To regard that the one of 3G technology is supplemented as.WiFi technology, as Bluetooth technology, belongs to use in office and family Wireless LAN communication technology.WIFI is a kind of short range wireless transmission technology, it is possible to support the Internet in the range of hundreds of feet Accessing radio signal, its great advantage is that transmission speed is higher, and in the case of signal is more weak or noisy, bandwidth is adjustable Whole, effectively ensure stability and the reliability of network.But it is as the continuous expansion of WLAN application, its peace Full problem the most increasingly comes into one's own.

In some megastore, communal facility, citizen can use wireless network much smootherly, is namely commonly called as WIFI.Generally these places are because of the open network used, and do not have password, so searching for nothing with smart mobile phone, panel computer etc. Gauze network, just can connect easily.In the epoch of WiFi, rubbing WiFi becomes one basic " existence technical ability ".But enjoying While WiFi offers convenience, the security precautions surfed the Net general lack of WiFi due to people, WiFi has become as safely respectively Plant network trap, the severely afflicated area of fishing swindle.

For solving the problems referred to above, it is typically all at present by the application data needing transmission are encrypted or set up The mode of secure connection passage (such as VPN passage) ensures the data safety after accessing public WiFi.However, it has been found in practice that Terminal can not provide the user the safety information of public WIFI network in real time, and domestic consumer also cannot be by complicated encryption Means are guaranteed under public WiFi network the safety carried out data transmission, it is therefore desirable to a kind of simple and reliable internet security Managed Solution.

Summary of the invention

The embodiment of the present invention provides the method for a kind of internet security management, can promote the safety of internet security management And practicality.

First aspect, the method embodiments providing the management of a kind of internet security, the method includes:

Terminal to server sends the first acquisition request；

Receive described server and obtain, according to described first, first network access information and the visit of the second network that request returns Asking information, described first network accesses information and refers to that what described server stored is carried out according to the default network address under network under test Network accesses the produced network access information of operation, described second network access information refer to that described server store default Carrying out network according to the default network address under secure network and access the produced network access information of operation, described network accesses letter Breath includes accessing script or accessing link；

Access information and the matching analysis of described second network access information according to described first network, determine described in treat The safety of survey grid network.

On the other hand, embodiments providing a kind of terminal, this terminal includes:

Transmitting element, for sending the first acquisition request to server；

Receive unit, access information for receiving described server according to the described first first network obtaining request return With the second network access information, described first network access that information refers to that described server store under network under test according to default The network address carries out network and accesses the produced network access information of operation, and described second network access information refers to described server Store carries out the network produced network access information of access operation, institute according to the default network address under preset security network State network access information to include accessing script or accessing link；

Processing unit, for dividing according to the coupling that described first network accesses information and described second network access information Analysis, determines the safety of described network under test.

The embodiment of the present invention can by terminal obtain storage in server under network under test according to the default network address Carry out network and access the weight under preset security network of storage in operation produced first network access information, and server Newly carry out network according to the described default network address and access produced second network access information of operation, according further to right Described first network accesses information and the matching analysis of described second network access information, determines the safety of described network under test Property；So can contrast the network access information of server record thus simply and reliably draw/determine the safety of network under test Property, and then user/terminal can select safely automatically, intelligently or safety network higher is attached and communicates； Improve the safety of user's online.

Accompanying drawing explanation

In order to be illustrated more clearly that embodiment of the present invention technical scheme, required use in embodiment being described below Accompanying drawing is briefly described, it should be apparent that, the accompanying drawing in describing below is some embodiments of the present invention, general for this area From the point of view of logical technical staff, on the premise of not paying creative work, it is also possible to obtain other accompanying drawing according to these accompanying drawings.

Fig. 1 is the structural representation of a kind of network frame that the embodiment of the present invention provides；

Fig. 2 is the schematic flow sheet of a kind of internet security management method that the embodiment of the present invention provides；

Fig. 3 is the schematic flow sheet of a kind of internet security management method that another embodiment of the present invention provides；

Fig. 4 is the schematic flow sheet of a kind of internet security management method that another embodiment of the present invention provides；

Fig. 5 is the schematic flow sheet of a kind of internet security management method that another embodiment of the present invention provides；

Fig. 6 is the structural representation of a kind of terminal that the embodiment of the present invention provides；

Fig. 7 is the structural representation of a kind of terminal that another embodiment of the present invention provides；

Fig. 8 is the structural representation of a kind of internet security management system that the embodiment of the present invention provides.

Detailed description of the invention

Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is carried out clear, complete Describe, it is clear that described embodiment is a part of embodiment of the present invention rather than whole embodiments wholely.Based on this Embodiment in bright, the every other enforcement that those of ordinary skill in the art are obtained under not making creative work premise Example, broadly falls into the scope of protection of the invention.

Should be appreciated that when using in this specification and in the appended claims, term " includes " and " comprising " instruction Described feature, entirety, step, operation, element and/or the existence of assembly, but it is not precluded from one or more further feature, whole Body, step, operation, element, assembly and/or the existence of its set or interpolation.

It is also understood that the term used in this description of the invention is merely for the sake of the mesh describing specific embodiment And be not intended to limit the present invention.As used in description of the invention and appended claims, unless on Hereafter clearly indicating other situation, otherwise " ", " " and " being somebody's turn to do " of singulative is intended to include plural form.

It will be further appreciated that, the term "and/or" used in description of the invention and appended claims is Refer to the one or more any combination being associated in the item listed and likely combine, and including that these combine.

As used in this specification and in the appended claims, term " if " can be according to context quilt Be construed to " when ... " or " once " or " in response to determining " or " in response to detecting ".Similarly, phrase " if it is determined that " or " if be detected that [described condition or event] " can be interpreted to mean according to context " once it is determined that " or " in response to really Fixed " or " [described condition or event] once being detected " or " in response to [described condition or event] being detected ".

In implementing, the terminal described in the embodiment of the present invention includes but not limited to such as have touch sensitive surface Mobile phone, laptop computer or the tablet PC of (such as, touch-screen display and/or touch pad) etc other just Portable device.It is to be further understood that in certain embodiments, described equipment not portable communication device, but have tactile Touch the desk computer of sensing surface (such as, touch-screen display and/or touch pad).

In discussion below, describe the terminal including display and touch sensitive surface.It is, however, to be understood that It is that terminal can include such as physical keyboard, mouse and/or control other physical user-interface device one or more of bar.

Terminal supports various application programs, such as following in one or more: drawing application program, demonstration application journey Sequence, word-processing application, website create application program, dish imprinting application program, spreadsheet applications, game application Program, telephony application, videoconference application, email application, instant messaging applications, exercise Support the application of application program, photo management application program, digital camera application program, digital camera application program, web-browsing Program, digital music player application and/or video frequency player application program.

The various application programs that can perform in terminal can use at least one of such as touch sensitive surface public Physical user-interface device.Among applications and/or can adjust in corresponding application programs and/or change and touch sensitive table The corresponding information of display in one or more functions in face and terminal.So, the public physical structure of terminal (such as, touches Sensing surface) the various application programs with the most directly perceived and transparent user interface can be supported.

The embodiment of the invention discloses a kind of internet security management method and terminal, contribute to user select safety or The higher network of safety carries out data communication.It is described in detail individually below.

In order to be best understood from method and the terminal of a kind of internet security management that the embodiment of the present invention provides, the most right The network architecture that the embodiment of the present invention is suitable for is described.Referring to Fig. 1, Fig. 1 is the open one provided of the embodiment of the present invention The structural representation of network architecture.As it is shown in figure 1, this network architecture schematic diagram can include service equipment and terminal, wherein, clothes Business equipment can include server, service host, service system and service platform etc., and terminal can include smart mobile phone (such as Android phone, IOS mobile phone etc.), PC, panel computer, palm PC, mobile internet device (MID, Mobile Internet Devices) or the internet device such as wearable intelligent equipment.In the network architecture shown in Fig. 1, clothes Business equipment can be communicatively coupled with terminal by the Internet, understands that following server is as service equipment for the convenience of the user One representative with described terminal carry out related communication description.

See Fig. 2, be the schematic flow sheet of the embodiment of the present invention a kind of internet security management method of offer, as shown in the figure Internet security manager may comprise steps of:

S101, terminal to server send the first acquisition request.

In the embodiment of the present invention, terminal can be (such as wifi, bluetooth, data wire etc.) by the way of wire/wireless communication Sending first to corresponding server and obtain request, described first obtains request for obtaining first stored in described server Network access information and the second network access information, described first network access information may refer to described terminal some or Institute during network access operates is carried out according to the default network address of the self-defined setting of user/system under multiple network under test The network access information produced, described second network access information may refer to certain that described terminal determines in this terminal/subscriber Again carry out according to the above-mentioned default network address (such as data network, 2G/3G/4G network) under one or more preset security networks Network accesses produced network access information in operating process.

It is understood that when described terminal is connected to some or multiple uncertain network under test (is such as connected to footpath between fields Raw WiFi) time, described terminal can by this network under test carry out the network of correspondence access operation time, described terminal can be according to The access information such as the network address, access link, access script of such as presetting of the self-defined setting of user/system carry out the mutual of correspondence Internet interview, i.e. network access operation, all or part that described terminal can be carried out under this network under test with minute book terminal Access record information, that is to say network access information.Owing to network under test may be unsafe network, as described terminal exists Being connected under strange unsafe WiFi, unsafe WiFi equipment may be distorted terminal and be sent such as to associated server Setting network address, access script etc. access information, thus reach steal privacy of user data or destroy subscriber equipment (i.e. Described terminal) or the purpose of user data (i.e. terminal data).Alternatively, described terminal can receive or obtain this terminal and treating Carry out network according to the above-mentioned access information such as the network address, access link, access script of such as presetting under survey grid network and access behaviour Make the corresponding first network produced and access information, (being i.e. that the first network that server received and accessed accesses information).

Alternatively, if terminal disconnection is connected with the network of network under test (such as strange WiFi) in certain time, will When described terminal is connected under some or the preset security network of multiple self-defined setting of user/system, described terminal is permissible Memorizer from this terminal reads above-mentioned terminal under network under test, carries out the access letter corresponding to network access operation Breath (such as the default network address, accesses link, access script etc.), and the most described terminal can be again according to above-mentioned access Information again carries out network and accesses operation, and the most described terminal can receive or obtain server and access according to above-mentioned network The second network access information that operation is returned.

Wherein, described preset security network may refer to the network of user's hand labeled/setting, as user own home creates WiFi network, data network etc., the network of labelling can be uploaded to the server of correspondence further, in order to share this net The safety of network, or official registers in server/system and obtains the network etc. of certification, the embodiment of the present invention does not limits Fixed.

The most such as, it is assumed that terminal is currently connected under certain network under test (such as strange WiFi), and present user is at end Inputting network address " http://www.baidu.com " in end and desire access to www.baidu.com, terminal can be accessed by WiFi equipment " http://www.baidu.com " www.baidu.com, owing to this strange WiFi is probably insecure network, i.e. WiFi equipment may For pseudo-base station equipment, now terminal accesses " http://www.baidu.com " Baidu.com by unsafe pseudo-base station equipment Standing, this unsafe pseudo-base station equipment may distort above-mentioned Baidu network address, such as becomes " http://www.baidu.com/ Index.php.tn=site888_3_pg " etc. so make what server received target access address and terminal send Reference address differs, but when terminal carries out Baidu's network address access by preset security network (such as safe WiFi), server The target access address received is by consistent for the reference address sended over terminal.

In the embodiment of the present invention, user can send the first corresponding acquisition by this terminal to corresponding server please Asking, described first obtains request for obtaining this terminal stored in server respectively under network under test and preset security network Carry out network according to the default network address and access operation produced first network access information and the second network access information, also It is i.e. that the described terminal that the described server of acquisition receives passes through map network (i.e. network under test and preset security network) to this The access information that server sends, such as accesses link or accesses the access information such as script.

Alternatively, net is such as preset by above-mentioned network under test according to the self-defined setting of user/system when described terminal When network address, the access information such as link, access script that accesses carry out network access operation, owing to described network under test is probably not The network of safety, this network is also possible to during accessing operation can be by network attack, the most described server or described end End can with minute book terminal under being connected to this network under test such as network hole, safety defect etc. received by (strange WIFI) For representing the described terminal network attack data by network attack；And/or, when described terminal is connected to described network under test If occurring abnormal during the lower the most described terminal of user/system, the most described terminal can be treated being connected to this with minute book terminal Under survey grid network, there are abnormal operation exception data (such as application abnormal data, system operation exception data etc.) in this terminal operating.

It should be noted that above-mentioned first network accesses information and the second network access information refers respectively to described terminal Under network under test and preset security network, carry out identical network access the produced network access information of operation, described network Access information can include such as access script, access link, network attack data, operation exception data or other for The data message producing or recorded in network accesses operating process, the embodiment of the present invention is not construed as limiting.

Alternatively, this terminal of record/get can be connected under described network under test and described pre-by described terminal If carrying out identical network under secure network to access the produced network access information of operation (the most above-mentioned first network access letter Breath and the second network access information) and record to such as network attack data, operation exception data and described in treat survey grid The access information such as the SSID (Service Set Identifier, service set) of network, MAC Address, network name are uploaded/are sent out Give described server, in order to described server record/storage is about the access information of described network under test.

Described terminal can include smart mobile phone (such as Android phone, IOS mobile phone etc.), PC, panel computer, The Internets such as palm PC, mobile internet device (MID, Mobile Internet Devices) or wearable intelligent equipment Equipment, the embodiment of the present invention is not construed as limiting.

S102, receive described server and obtain, according to described first, the first network that request returns and access information and the second net Network accesses information, described first network access that information refers to that described server stores under network under test according to the default network address Carry out network and access the produced network access information of operation, described second network access information refer to that described server stores Carrying out network according to the default network address under preset security network and access the produced network access information of operation, described network is visited The information of asking includes accessing script or accessing link.

In the embodiment of the present invention, terminal obtains to corresponding server transmission above-mentioned first after asking in step S101, Described server can receive and respond described first and obtain request, separately or concurrently by described in book server record/storage Terminal carries out network access according to the default network address/default access information under above-mentioned network under test or under preset security network The produced first network of operation accesses information and the second network access information is sent to described terminal.Described terminal can receive Above-mentioned server obtains, according to described first, first network access information and the second net that request sends to described server/returns Network accesses information.

S103, basis access information and the matching analysis of described second network access information to described first network, determine The safety of described network under test.

In the embodiment of the present invention, terminal can access information and the second net according to the above-mentioned first network receiving/obtaining The matching analysis of network access information determines the safety of described network under test.

The most alternatively, described basis accesses information and the coupling of described second network access information to described first network Analyze, determine the safety of described network under test, including:

By in the access script in described first network access information or access link and described second network access information Access script or access link carry out the matching analysis, obtain correspondence matching result information；

If there is default access in described matching result information to distort information, it is determined that described network under test is uneasy Whole network；Or, if there is not default access in described matching result information to distort information, it is determined that described network under test For secure network or possible secure network.

Access script in described first network access information or access can be linked and described second net by described terminal Access script or access link in network access information carry out the matching analysis and obtain the matching result information of correspondence, in implementing Described terminal may determine that the access script in described first network access information or access link whether with described second network Access script in access information or access link coupling, if coupling, the most described terminal is it is believed that this terminal is connected to described Carry out the network produced network access information of access operation according to the default network address under network under test to be not tampered with, or Think that described network under test can be possible secure network or secure network, that is to say that described terminal may determine that this terminal pair Described first network accesses information and described second network access information carries out the matching analysis and can obtain such as network access letter Breath is not tampered with, described network under test is secure network or may the matching result information such as secure network；Otherwise, described terminal Produced it is believed that this terminal is connected under described network under test carry out the network access operation identical with preset security network Network access information be tampered or described network under test is insecure network, that is to say that described terminal will determine this terminal Described first network is accessed information and described second network access information carries out the matching analysis and obtains such as network access information It is tampered or described network under test has been the matching result information such as insecure network.The most described terminal may determine that above-mentioned Whether described first network is accessed in the matching result information obtained by the matching analysis of information and the second network access information Exist user/system in advance in this terminal the default access of self-defined setting distort information (as network access information is usurped Change), if it is present, described terminal it is fair to consider that/determine that described network under test is insecure network, if do not deposited , then described terminal is it is believed that described network under test is secure network or insecure network.That is to say, described terminal is permissible By accessing script or accessing the access foot in link and described second network access information in described first network access information This or access link carry out coupling contrast, if the access script in described first network access information or access link are with described Access script in second network access information or to access link identical, then described terminal it is believed that before this terminal connected The described network under test connect is secure network or possible secure network, if the access script in described first network access information Or access link differs with the access script in described second network access information or access link, then described terminal is permissible The described network under test that before thinking, this terminal connects is insecure network.

The the second acquisition request sent including described matching result information to described server；Described second acquisition please Ask and under described network under test, there is the frequency corresponding to described matching result information for obtain in described server storage, Or for obtaining described server existing under described network under test corresponding to described matching result information according to storage The safety of the described network under test that the frequency determines；

Receive described server depositing under described network under test according to the described second described storage obtaining request return In the frequency corresponding to described matching result information, and tie according to the described coupling that exists under described network under test of described storage Really the frequency corresponding to information determines the safety of described network under test；Or, receive described server and obtain according to described second Take the safety of the described network under test that request returns.

Access script in described first network access information or access can be linked and described second net by described terminal Access script or access link in network access information carry out the matching analysis and obtain the matching result information of correspondence, in implementing Described terminal may determine that the access script in described first network access information or access link whether with described second network Access script in access information or access link coupling, if coupling, the most described terminal is it is believed that this terminal is connected to described Carry out the network produced network access information of access operation according to the default network address under network under test to be not tampered with, or Described network under test can be secure network/possibility secure network, that is to say that described terminal may determine that this terminal is to described First network access information and described second network access information carry out the matching analysis obtain such as network access information not by Distort, described network under test is secure network/the matching result information such as possibility secure network；Otherwise, described terminal it is believed that This terminal is connected under described network under test carry out the network identical with preset security network and accesses operation produced network visit The information of asking has been tampered or described network under test is insecure network, that is to say that described terminal will determine that this terminal is to described One network access information and described second network access information carry out the matching analysis obtain such as network access information be tampered or Described network under test is the matching result information such as insecure network.The most described terminal can send the to described server Two obtain request, and wherein, described second acquisition request can include described matching result information, and described second acquisition request is permissible Under described network under test, the frequency corresponding to described matching result information is there is for obtain in described server storage, or Described in person, second obtains described of the existence under described network under test that request may be used for obtaining described server according to storage Join the safety of the described network under test that the frequency corresponding to object information determines.Alternatively, described in being connected in each terminal After carrying out different or identical network access operations under network under test, each terminal can repeat above-mentioned to treating survey grid Network carries out coupling point with the corresponding network access information carried out under preset security network obtained by identical network access operates Analysis (i.e. whether network access information is tampered), each terminal above-mentioned is it is also possible that the matching result information obtaining correspondence is uploaded To described server；Described server can be added up and store each terminal and carry out network access operation under described network under test Whether corresponding network access information is tampered, and distorts the matching result information such as number of times.

Described server receive described second obtain request after, if described second acquisition request is used for obtaining described In server there is the frequency corresponding to described matching result information in storage under described network under test, then described server The each terminal added up/store can be found out in book server at described network under test according to the described second instruction obtaining request The lower frequency/the number of times existed corresponding to described matching result information, in the described server that described server can will find out The frequency corresponding to described matching result information that exists under described network under test of storage is sent to described terminal, described terminal Can receive described server according to described second obtain request return described server in storage at described network under test The lower frequency existed corresponding to described matching result information, the most described terminal can also store according in described server Under described network under test, there is the frequency corresponding to described matching result information to determine the safety of described network under test.

Described server receive described second obtain request after, if described second acquisition request is used for obtaining described Server according to storage exist under described network under test the frequency corresponding to described matching result information determine described in treat The safety of survey grid network, then described server can first look for out book server according to the described second instruction obtaining request The frequency/the number of times corresponding to described matching result information is there is (i.e. in each terminal of middle statistics/storage under described network under test It is that described server can be added up and store each terminal and be connected in described network under test carry out produced by network access operation Number of times that network access information is tampered or thought that described network under test is secure network/insecure network/can by each terminal The number of times of energy secure network), described then according to the existence under described network under test of storage in the described server found out The frequency corresponding to matching result information determine the safety of described network under test to determine the safety of described network under test, Finally the safety of the described network under test determined is sent to described terminal.Described terminal can receive described server root According to the described second safety obtaining the described network under test that request returns.

Sending the 3rd acquisition request to described server, described 3rd acquisition request is used for indicating described server by described Accessing script or accessing the access script in link and described second network access information or visit in first network access information Ask that link carries out the matching analysis, obtain the matching result information of correspondence, search and send in described server storage described The frequency corresponding to described matching result information is there is under network under test；Or, it is used for indicating described server by described first Accessing script or access the access script in link and described second network access information or access chain in network access information Tap into row the matching analysis, obtain the matching result information of correspondence, under described network under test, there is described coupling according to store The frequency corresponding to object information determines the safety of described network under test, and the safety of the described network under test determined is sent out Give described terminal；

Receive described server depositing under described network under test according to the described 3rd described storage obtaining request return In the frequency corresponding to described matching result information, and tie according to the described coupling that exists under described network under test of described storage Really the frequency corresponding to information determines the safety of described network under test；Or, receive described server and obtain according to the described 3rd Take the safety of the described network under test that request returns.

In implementing, described terminal can send the 3rd acquisition request to described server, when described 3rd acquisition please Ask for indicating described server by the access script in described first network access information or to access link and described second net Access script or access link in network access information carry out the matching analysis, obtain the matching result information of correspondence, search concurrent Send when there is the frequency corresponding to described matching result information under described network under test of storage in described server, described When server receives described 3rd acquisition request, described server can obtain institute according to the described 3rd instruction obtaining request State terminal and carry out network access behaviour according to the default network address under described network under test and under described preset security network respectively Making the described first network that produces and access information and described second network access information, the most described server can be by described the Accessing script or accessing link and the access script in described second network access information or access in one network access information Link carry out mate relative analysis, if it does, then described in carry out mate relative analysis will obtain the most described terminal described Carry out network access information produced by the network operation identical with preset security network under network under test to be not tampered with or institute Stating network under test is the matching result information such as secure network or possible secure network；Otherwise, carrying out mating relative analysis described in will Obtain the most described terminal under described network under test, carry out network produced by the network operation identical with preset security network Access information has been tampered or described network under test is the matching result information such as insecure network.Secondly described server is permissible Find out from book server book server statistics/storage to each terminal be connected under described network under test carry out network access The number of times that the produced network access information of operation is tampered, or described each terminal add up/think described network under test be safety/ Dangerous/may the number of times of secure network, what the most described server can find out storage in book server treats survey grid described There is the frequency/number of times corresponding to described matching result information under network, the most described server can be by above-mentioned lookup In described server, the frequency/number of times corresponding to described matching result information that exists under described network under test of storage is sent to Described terminal；Described terminal can receive described server and obtain, according to the described 3rd, the described server that request returns/sends The frequency/the number of times corresponding to described matching result information that exists under described network under test of middle storage is sent to described terminal, And under described network under test, there is the frequency/number of times corresponding to described matching result information according to what described server stored It is sent to described terminal to determine the safety of described network under test.

Or, described terminal can send the 3rd acquisition request to described server, if described 3rd acquisition request is used By the access script in described first network access information or link and described second network visit is accessed in indicating described server Ask the access script in information or access link carry out the matching analysis, obtain correspondence matching result information, according to storage There is the frequency corresponding to described matching result information under described network under test and determine the safety of described network under test, and will be really When the safety of fixed described network under test is sent to described terminal, then described server is transmitted across receiving described terminal When the described 3rd come obtains request, described server can obtain described terminal according to the described 3rd instruction obtaining request and divide Do not carry out network according to the default network address under described network under test and under described preset security network and access what operation produced Described first network accesses information and described second network access information, and described first network can be visited by the most described server Ask that the access script in information or access link link carry out with the access script in described second network access information or access Coupling relative analysis, if it does, then described in carry out mate relative analysis will obtain the most described terminal at described network under test Under carry out network access information produced by the network operation identical with preset security network be not tampered with or described in treat survey grid Network is the matching result information such as secure network or possible secure network；Otherwise, carry out mating relative analysis described in will obtain such as Described terminal carries out network access information produced by the network operation identical with preset security network under described network under test It is tampered or described network under test has been the matching result information such as insecure network.Secondly described server can be from this service Device finds out book server statistics/storage to each terminal be connected under described network under test to carry out network and access operation and produced The number of times that raw network access information is tampered, or described each terminal add up/think described network under test be safety/dangerous/ The number of times of possible secure network, the most described server can find out the existence under described network under test of storage in book server The frequency/number of times corresponding to described matching result information.The most described server can be according in the described server found out The frequency/the number of times corresponding to described matching result information is there is to determine described network under test in store under described network under test Safety, the safety of the described network under test determined can be sent to described terminal by last described server, described Terminal can receive described server according to the described 3rd safety obtaining the described network under test that request returns.

The most alternatively, described according to described storage exist under described network under test described matching result information institute right The frequency answered determines the safety of described network under test, including:

If the described frequency is in preset first threshold value scope, it is determined that described network under test is secure network；

If the described frequency is in default Second Threshold scope, it is determined that described network under test is possible secure network；

If the described frequency is in default 3rd threshold range, it is determined that described network under test is insecure network.

Described according to described storage to there is the frequency corresponding to described matching result information under described network under test true The safety of fixed described network under test is embodied as step and may include that and judge/determine that what described server stored treats described There is the frequency corresponding to described matching result information under survey grid network and be stored in advance in described terminal/described clothes in user/system Business device determines in which threshold range of self-defined setting the safety of described network under test, exemplarily when as described in clothes The frequency corresponding to described matching result information that exists under described network under test of business device storage is in user/system in advance certainly Definition arrange preset first threshold value in the range of, then it is believed that/determine that described network under test is secure network；When described service The frequency corresponding to described matching result information that exists under described network under test of device storage is in user/system and makes by oneself in advance In the range of the default Second Threshold that justice is arranged, then it is believed that/determine that described network under test is for may secure network；When described clothes The frequency corresponding to described matching result information that exists under described network under test of business device storage is in user/system in advance certainly What definition was arranged presets in the 3rd threshold range, then it is believed that/determine that described network under test is insecure network.

The most alternatively, described method also includes:

Obtain terminal and carry out network access operation produced network access according to the default network address under network under test Information；

Judge whether described network access information exists and accessed the operation exception data caused by operation by described network, And/or from server obtain network attack data；

The most then according to described network attack data and/or described operation exception data, determine the peace of described network under test Quan Xing.

Described terminal can also obtain that this terminal recorded under described network under test according to the above-mentioned default network address Carrying out network and access the produced network access information of operation (the most above-mentioned first network accesses information), the most described terminal is also May determine that whether described network access information exists and accessed the operation exception data caused by operation (such as by described network System operation exception is slow), and/or the network attack data got from described server are (as application program occurs for no reason Collapse etc.), if it is present, described terminal can be come really according to above-mentioned network attack data and/or operation exception data The safety of fixed described network under test；If it does not exist, then end flow process.

Alternatively, the most described according to described network attack data and/or described operation exception data, determine described to be measured The safety of network, including:

To described server send the 4th acquisition request, described 4th acquisition request include described network attack data and/ Or described operation exception data, described acquisition request is for obtaining existing under described network under test of storage in described server The frequency corresponding to described network attack data and/or described operation exception data；Or, be used for obtaining described server according to Storage to there is the frequency corresponding to described network attack data and/or described operation exception data under described network under test true The safety of fixed described network under test；

Receive described server depositing under described network under test according to the described 4th described storage obtaining request return In the frequency corresponding to described network attack data and/or described operation exception data, and treating described according to described storage There is the frequency corresponding to described network attack data and/or described operation exception data under survey grid network and determine described network under test Safety；Or, receive described server according to the described 4th safety obtaining the described network under test that request returns.

In implementing, described terminal can send the 4th acquisition request to described server, if the described 4th obtains Under described network under test, described network attack data and/or described fortune is there is in request for obtain in described server storage The frequency corresponding to row abnormal data, then when described server receives described 4th acquisition request, described server can With find out from book server each terminal of record/storage in book server be connected under described network under test to carry out identical or Different networks has the number of times/frequency corresponding to network attack data and/or operation exception data when accessing operation, enters one Described network attack is there is in walk in the described server that described server can will find storage under described network under test The frequency corresponding to data and/or described operation exception data sends/returns to described terminal, and described terminal can receive described Under described network under test, described net is there is in server according to store in the described 4th described server obtaining request return The frequency corresponding to data and/or described operation exception data attacked by network.Alternatively, be connected in each terminal described in treat survey grid After carrying out different or identical network access operations under network, what this terminal record be recorded by each terminal treats survey grid described Carry out network under network and access the produced network access information of operation (as accessed script, accessing link, operation exception data, net Data etc. attacked by network) it is sent to described server；Described server can add up and store each terminal at described network under test Under carry out network access network access information corresponding to operation (as described in exist under network under test as described in operation exception data Or the number of times/frequency of described network attack data etc., described network under test are marked as safety/dangerous/may secure network Number of times/frequency etc.).

Or, described terminal can send the 4th acquisition request to described server, if described 4th acquisition request is used In obtain described server according to storage under described network under test, there are described network attack data and/or described operation is different The safety of the described network under test that the frequency corresponding to regular data determines, then receive the described 4th at described server and obtain When taking request, described server can find out each terminal of record/storage in book server from book server and be connected to institute State and under network under test, carry out having network attack data and/or operation exception data when identical or different network accesses operation Corresponding number of times/frequency, the most described server can according in the described server found storage described to be measured The frequency corresponding to described network attack data and/or described operation exception data is there is to determine described network under test under network Safety, further the safety of the described network under test determined is sent to described terminal；Described terminal can connect Receive described server according to the described 4th safety obtaining the described network under test that request returns/sends.

The most alternatively, described according to described storage exist under described network under test described network attack data and/ Or the frequency corresponding to described operation exception data determines the safety of described network under test, including:

If the described frequency is in default 4th threshold range, it is determined that described network under test is secure network；

If the described frequency is in default 5th threshold range, it is determined that described network under test is possible secure network；

If the described frequency is in default 6th threshold range, it is determined that described network under test is insecure network.

Described according to described storage under described network under test, there are described network attack data and/or described operation is different The frequency corresponding to regular data determine the safety of described network under test be embodied as step may include that judge/determine described Existing under described network under test corresponding to described network attack data and/or described operation exception data of server storage The frequency is in user/system is stored in advance in described terminal/described server to come in which threshold range of self-defined setting Determine the safety of described network under test, exemplarily when as described in server store as described in exist under network under test as described in The frequency corresponding to network attack data and/or described operation exception data is in the pre-of the most self-defined setting of user/system If in the 4th threshold range, then it is believed that/determine that described network under test is secure network；When described server store in institute State and there is the frequency corresponding to described network attack data and/or described operation exception data under network under test and be in user/be Unite the presetting in the 5th threshold range of the most self-defined setting, then it is believed that/determine that described network under test is for may safety net Network；Under described network under test, described network attack data and/or described operation exception number is there is when what described server stored Be in the presetting in the 6th threshold range of the most self-defined setting of user/system according to the corresponding frequency, then it is believed that/determine Described network under test is insecure network.

It should be noted that above-mentioned preset first threshold value scope, default Second Threshold scope ... until presetting the 6th Threshold range can be the self-defined setting in described terminal/described server in advance of user/system, and above-mentioned presets the One threshold range is until described the 6th threshold range of presetting may refer to identical threshold range, it is also possible to refer to different thresholds Value scope, the embodiment of the present invention is not construed as limiting.

The most alternatively, described method also includes:

When detecting that described terminal support connects at least one available network, send corresponding network to described server Security authentication request, wherein, the request of described network security verification includes the network identity corresponding with described available network, different The corresponding different network identity of available network；

Receive the safety corresponding with described network identity that described server returns according to the request of described network security verification Object information；

According to described safe object information and described network identity, the network being shown to described available network preset connects Operation interface.

When user opens the network savvy of terminal, described terminal can detect and search this terminal and can support to connect One or more available networks (as user opens the WiFi function of terminal, described terminal may search near broadcast The WiFi network of SSID signal, or non-Broadcast SSIDs signal but this terminal is preserved hiding of the SSID of its network and password WiFi network), thus form the available network list that described terminal allows to connect；Or, described terminal is having been connected to one In the case of network, it is also possible to scan for other attachable available networks, timing updates this terminal can support connection Available network list.The most described terminal can pass through the current network connected or by data network (such as 2G/3G etc.) to institute Stating server and send corresponding network security verification request, the request of described network security verification includes the network of above-mentioned available network Mark, different available network correspondences has different network identities, that is to say that described terminal can be searched above-mentioned by network Rope to available network list in SSID and MAC Address be sent to described server, in order to described server authentication also returns The safety of all or part available network in described available network list.Described server is transmitted across receiving described terminal During the described network security verification request come, described server will respond the request of described network security verification, in book server Search and determine the safe object information of all or part network in above-mentioned available network list, that is to say and find out respectively and institute State the network security object information that network identity is corresponding, the safety knot corresponding with described network identity that will find out further Really information is sent to described terminal.Described terminal can receive what described server returned according to the request of described network security verification The safe object information corresponding with described network identity, terminal described further can also according to described safe object information and Described network identity, is shown to above-mentioned available network in the network attended operation interface preset, that is to say that described terminal can With the lookup result (the safest object information) according to above-mentioned server, in the peace of each available network described network shown behind Quan Xing, as shown the letter such as " safety/trustable network ", " insecure network " " possible secure network " after the SSID of each WiFi Breath.

Alternatively, the most described according to described safe object information and described network identity, described available network is shown To the network attended operation interface preset, including:

According to described network identity, the network being shown to safe object information corresponding for whole available networks preset connects Operation interface；Or,

According to described network identity, target available network is shown to the network attended operation interface preset, wherein, described The safe object information that target available network is corresponding is default secure network object information.

Corresponding to whole available networks that above-mentioned terminal support can be connected according to described network identity by described terminal Safe object information be shown to user/system in advance in this terminal self-defined setting preset network attended operation circle Face；Or, target available network can be shown to, according to described network identity, network attended operation circle preset by described terminal On face, the safe object information that wherein said target available network is corresponding is that user/system is in advance in the self-defined setting of this terminal Preset secure network object information, as safety/trustable network or may secure network, be i.e. that described terminal can be by basis Described network identity and described safe object information, will determine as safe or may be safe target available network and be shown to institute State on default network attended operation interface.

Refer to Fig. 3, be the schematic flow sheet of a kind of internet security management method that another embodiment of the present invention provides, The described method of the embodiment of the present invention can be applied in band communications such as such as smart mobile phone, panel computer, intelligence wearable devices In the terminal of network function, specifically can be realized by the processor of these terminals.The described method of the embodiment of the present invention also includes Following steps.

S201, terminal to server send the first acquisition request.

S202, receive described server and obtain, according to described first, the first network that request returns and access information and the second net Network accesses information, described first network access that information refers to that described server stores under network under test according to the default network address Carry out network and access the produced network access information of operation, described second network access information refer to that described server stores Carrying out network according to the default network address under preset security network and access the produced network access information of operation, described network is visited The information of asking includes accessing script or accessing link.

S203, by the access script in described first network access information or access link and described second network access letter Access script or access link in breath carry out the matching analysis, obtain the matching result information of correspondence.

If there is default access in S204 described matching result information to distort information, it is determined that described network under test For insecure network.

If there is not default access in S205 described matching result information to distort information, it is determined that described in treat survey grid Network is secure network or possible secure network.

It should be noted that above-mentioned steps S204 and step S205 are that the most i.e. terminal can be from above-mentioned steps S204 and step S205 arbitrarily choose a step perform.

Refer to Fig. 4, be the schematic flow sheet of a kind of internet security management method that another embodiment of the present invention provides, The described method of the embodiment of the present invention can be applied in band communications such as such as smart mobile phone, panel computer, intelligence wearable devices In the terminal of network function, specifically can be realized by the processor of these terminals.The described method of the embodiment of the present invention also includes Following steps.

S301, terminal to server send the first acquisition request.

S302, receive described server and obtain, according to described first, the first network that request returns and access information and the second net Network accesses information, described first network access that information refers to that described server stores under network under test according to the default network address Carry out network and access the produced network access information of operation, described second network access information refer to that described server stores Carrying out network according to the default network address under preset security network and access the produced network access information of operation, described network is visited The information of asking includes accessing script or accessing link.

S303, by the access script in described first network access information or access link and described second network access letter Access script or access link in breath carry out the matching analysis, obtain the matching result information of correspondence.

S304, the second acquisition request sent including described matching result information to described server；Described second The request that obtains is for obtaining in described server the existing under described network under test corresponding to described matching result information of storage The frequency, or for obtain described server according to storage under described network under test, there is described matching result information institute The safety of the described network under test that the corresponding frequency determines.

It should be noted that when described second obtains request and treat survey grid for obtain in described server storage described When there is the frequency corresponding to described matching result information under network, the most described terminal continues executing with step S305；When described second Obtain request for obtain described server according to storage exist under described network under test described matching result information institute right During the safety of the described network under test that the frequency answered determines, the most described terminal continues executing with step S306.

S305, receive described server according to described second obtain request return described storage at described network under test The lower frequency existed corresponding to described matching result information, and according to described of the existence under described network under test of described storage Join the frequency corresponding to object information and determine the safety of described network under test.

The described frequency corresponding to described matching result information that exists under described network under test according to storage determines institute If the step that implements stating the safety of network under test may include that the described frequency is in preset first threshold value scope, the most really Fixed described network under test is secure network；If the described frequency is in default Second Threshold scope, it is determined that described network under test is Possible secure network；If the described frequency is in default 3rd threshold range, it is determined that described network under test is insecure network.

S306, receive described server and obtain, according to described second, the safety of described network under test that request returns.

Refer to Fig. 5, be the schematic flow sheet of a kind of internet security management method that another embodiment of the present invention provides, The described method of the embodiment of the present invention can be applied in band communications such as such as smart mobile phone, panel computer, intelligence wearable devices In the terminal of network function, specifically can be realized by the processor of these terminals.The described method of the embodiment of the present invention also includes Following steps.

S401, terminal to server send the first acquisition request.

S402, receive described server and obtain, according to described first, the first network that request returns and access information and the second net Network accesses information, described first network access that information refers to that described server stores under network under test according to the default network address Carry out network and access the produced network access information of operation, described second network access information refer to that described server stores Carrying out network according to the default network address under preset security network and access the produced network access information of operation, described network is visited The information of asking includes accessing script or accessing link.

S403, to described server send the 3rd acquisition request, described 3rd acquisition request is used for indicating described server By accessing script or accessing the access foot in link and described second network access information in described first network access information This or access link carry out the matching analysis, obtain the matching result information of correspondence, search and send storage in described server The frequency corresponding to described matching result information is there is under described network under test；Or, it is used for indicating described server by institute State in first network access information access script or access link and described second network access information in access script or Access link and carry out the matching analysis, obtain the matching result information of correspondence, under described network under test, there is institute according to store State the frequency corresponding to matching result information and determine the safety of described network under test, and the peace of described network under test that will determine Full property is sent to described terminal.

It should be noted that when described 3rd acquisition request is used for indicating described server that described first network is accessed letter The access script accessed in script or access link and described second network access information or access link in breath are mated Analyze, obtain the matching result information of correspondence, search and send the existence under described network under test of storage in described server During the frequency corresponding to described matching result information, described terminal continues executing with step S404；When the described 3rd obtains request use By the access script in described first network access information or link and described second network visit is accessed in indicating described server Ask the access script in information or access link carry out the matching analysis, obtain correspondence matching result information, according to storage There is the frequency corresponding to described matching result information under described network under test and determine the safety of described network under test, and will be really When the safety of fixed described network under test is sent to described terminal, described terminal continues executing with step S405.

S404, receive described server according to described 3rd obtain request return described storage at described network under test The lower frequency existed corresponding to described matching result information, and according to described of the existence under described network under test of described storage Join the frequency corresponding to object information and determine the safety of described network under test.

S405, receive described server and obtain, according to the described 3rd, the safety of described network under test that request returns.

Refer to Fig. 6, be the structural representation of a kind of terminal of the embodiment of the present invention, the described terminal of the embodiment of the present invention 6 include:

Transmitting element 60, sends the first acquisition request for terminal to server；

Receive unit 61, access letter for receiving described server according to the described first first network obtaining request return Breath and the second network access information, described first network access that information refers to that described server stores under network under test according in advance If the network address carries out network accesses the produced network access information of operation, described second network access information refers to described service What device stored carries out the network produced network access information of access operation according to the default network address under preset security network, Described network access information includes accessing script or accessing link；

Processing unit 62, for accessing information and the coupling of described second network access information according to described first network Analyze, determine the safety of described network under test.

The most alternatively,

Described processing unit 62, specifically for by the access script in described first network access information or access link and Access script or access link in described second network access information carry out the matching analysis, obtain the matching result letter of correspondence Breath；If there is default access in described matching result information to distort information, it is determined that described network under test is unsafe net Network；Or, if there is not default access in described matching result information to distort information, it is determined that described network under test is peace Whole network or possible secure network.

The most alternatively,

Described processing unit 62, specifically for by the access script in described first network access information or access link and Access script or access link in described second network access information carry out the matching analysis, obtain the matching result letter of correspondence Breath；The the second acquisition request sent including described matching result information to described server；Described second obtains request uses Under described network under test, the frequency corresponding to described matching result information is there is in obtain storage in described server, or Under described network under test, the frequency corresponding to described matching result information is there is according to store for obtaining described server The safety of the described network under test determined；Receive described server according to the described second described storage obtaining request return Under described network under test, there is the frequency corresponding to described matching result information, and treat survey grid according to described storage described There is the frequency corresponding to described matching result information under network and determine the safety of described network under test；Or, receive described clothes Business device is according to the described second safety obtaining the described network under test that request returns.

The most alternatively,

Described processing unit 62, for sending the 3rd acquisition request to described server, described 3rd acquisition request is used for Described server is indicated by the access script in described first network access information or to access link and described second network access Access script or access link in information carry out the matching analysis, obtain the matching result information of correspondence, search and send described In server there is the frequency corresponding to described matching result information in storage under described network under test；Or, it is used for indicating Described server is by the access script in described first network access information or accesses link and described second network access information In access script or access link carry out the matching analysis, obtain correspondence matching result information, according to storage treat described There is the frequency corresponding to described matching result information under survey grid network and determine the safety of described network under test, and the institute that will determine The safety stating network under test is sent to described terminal；Receive described server to obtain described in request return according to the described 3rd Storage under described network under test, there is the frequency corresponding to described matching result information, and according to described storage described There is the frequency corresponding to described matching result information under network under test and determine the safety of described network under test；Or, receive Described server is according to the described 3rd safety obtaining the described network under test that request returns.

The most alternatively,

Described processing unit 62, if being in preset first threshold value scope specifically for the described frequency, it is determined that described to be measured Network is secure network；If the described frequency is in default Second Threshold scope, it is determined that described network under test is possible safety net Network；If the described frequency is in default 3rd threshold range, it is determined that described network under test is insecure network.

Implementing of the unit related in the embodiment of the present invention refers to be correlated with in Fig. 1 to Fig. 5 correspondence embodiment Functional unit or the description of enforcement step, be not repeated herein.

See Fig. 7, be a kind of terminal structure schematic diagram of another embodiment of the present invention offer.The present embodiment as depicted In terminal may include that one or more processor 801；One or more input equipments 802, one or more outut devices 803 and memorizer 804.Above-mentioned processor 801, input equipment 802, outut device 803 and memorizer 804 are by bus 805 even Connect.Memorizer 802 is used for storing instruction, and processor 801 is for performing the instruction of memorizer 802 storage.Wherein, processor 801 For:

Terminal to server sends the first acquisition request；

Further, described processor 801 is additionally operable to:

Should be appreciated that in embodiments of the present invention, alleged processor 801 can be CPU (Central Processing Unit, CPU), this processor can also is that other general processors, digital signal processor (Digital Signal Processor, DSP), special IC (Application Specific Integrated Circuit, ASIC), ready-made programmable gate array (Field-Programmable Gate Array, FPGA) or other FPGAs Device, discrete gate or transistor logic, discrete hardware components etc..General processor can be microprocessor or this at Reason device can also be the processor etc. of any routine.

Input equipment 802 can include that Trackpad, fingerprint adopt sensor (for gathering the finger print information of user and fingerprint Directional information), mike etc., outut device 803 can include display (LCD etc.), speaker etc..

This memorizer 804 can include read only memory and random access memory, and to processor 801 provide instruction and Data.A part for memorizer 804 can also include nonvolatile RAM.Such as, memorizer 804 can also be deposited The information of storage device type.

In implementing, processor 801, input equipment 802 described in the embodiment of the present invention, outut device 803 can Perform described in first embodiment and the 5th embodiment of the method for the internet security management that the embodiment of the present invention provides Implementation, it is possible to the implementation of execution terminal described by the embodiment of the present invention, does not repeats them here.

See Fig. 8, be the structural representation of a kind of internet security management system that the embodiment of the present invention provides.As schemed Internet security management system in the present embodiment shown may include that server 80 and terminal 81；Wherein,

Described terminal 81, for sending the first acquisition request to server 80；Receive described server according to described first The first network that the request of acquisition returns accesses information and the second network access information, and described first network accesses information and refers to described clothes What business device stored carries out the network produced network access information of access operation, institute according to the default network address under network under test State the second network access information and refer to that what described server stored carries out network according to the default network address under preset security network Accessing the produced network access information of operation, described network access information includes accessing script or accessing link；According to institute State first network and access information and the matching analysis of described second network access information, determine the safety of described network under test.

Described server 80, for receiving the first acquisition request that terminal 81 sends；Respond described first and obtain request, will The first network of storage accesses information and the second network access information is sent to described terminal 81；Wherein, described first network is visited What the information of asking referred to that described server stores carry out network according to the default network address under network under test, and to access operation produced Network access information, described second network access information refer to that described server 80 stores under preset security network according to presetting The network address carries out network and accesses the produced network access information of operation, and described network access information includes accessing script or visit Ask link.

The most alternatively,

Described terminal 81, is additionally operable to the access script in described first network access information or accesses link and described the Access script or access link in two network access informations carry out the matching analysis, obtain the matching result information of correspondence；To institute State the second acquisition request that server 80 sends including described matching result information；Described second acquisition request is used for obtaining There is the frequency corresponding to described matching result information in store in described server under described network under test, or is used for obtaining Take described server 80 to determine according to the frequency corresponding to described matching result information that exists under described network under test of storage The safety of described network under test；Receive described server 80 according to described second obtain request return described storage There is the frequency corresponding to described matching result information under described network under test, and according to described storage at described network under test The lower frequency existed corresponding to described matching result information determines the safety of described network under test；Or, receive described service Device 80 is according to the described second safety obtaining the described network under test that request returns.

Described server 80, is additionally operable to receive described terminal 81 and sends the second acquisition request, and described second obtains request bag Include matching result information, described matching result information refer to described terminal by the access script in described first network access information or Access link and described second network access information in access script or access link carry out the matching analysis, correspondence obtain Joining object information, described second obtains request exists institute for obtain storage in described server 80 under described network under test State the frequency corresponding to matching result information, or for obtain described server 80 according to storage under described network under test There is the safety of the described network under test that the frequency corresponding to described matching result information determines；Responding described second acquisition please Ask, the frequency corresponding to described matching result information that exists under described network under test of storage is sent to described terminal；Or Person, responds described second and obtains request, there is described matching result information institute according to described storage under described network under test The corresponding frequency determines the safety of described network under test, and the safety of the described network under test determined is sent to described terminal 81。

The most alternatively,

Described terminal 81, is additionally operable to send the 3rd acquisition request to described server 80, and described 3rd acquisition request is used for Described server 80 is indicated by the access script in described first network access information or to access link and described second network visit Ask that the access script in information or access link carry out the matching analysis, obtain the matching result information of correspondence, search and send institute The frequency corresponding to described matching result information is there is in that states in server storage under described network under test；Or, it is used for referring to Show that described server 80 by the access script in described first network access information or accesses link and described second network access Access script in information or access link and carry out the matching analysis, obtains the matching result information of correspondence, according to storage in institute State and there is the frequency corresponding to described matching result information under network under test and determine the safety of described network under test, and will determine The safety of described network under test be sent to described terminal；Receive described server 80 and obtain request return according to the described 3rd Described storage under described network under test, there is the frequency corresponding to described matching result information, and according to described storage Under described network under test, there is the frequency corresponding to described matching result information determine the safety of described network under test；Or Person, receives described server 80 according to the described 3rd safety obtaining the described network under test that request returns.

Described server 80, is additionally operable to receive described terminal 81 and sends the 3rd acquisition request, and the described 3rd obtains request uses By the access script in described first network access information or link and described second network is accessed in indicating described server 80 Access script or access link in access information carry out the matching analysis, obtain the matching result information of correspondence, and search described In server 80 there is the frequency corresponding to described matching result information in storage under described network under test；Or, it is used for referring to Show that described server 80 by the access script in described first network access information or accesses link and described second network access Access script in information or access link and carry out the matching analysis, obtains the matching result information of correspondence, and according to storage There is the frequency corresponding to described matching result information under described network under test and determine the safety of described network under test；Response institute State the 3rd acquisition request, access link by described first or the first access script and described second accesses link or second and accesses foot Originally carry out the matching analysis, obtain the matching result information of correspondence, and search in described server 80 storage treat survey grid described The frequency corresponding to described matching result information is there is under network, and by described of the existence under described network under test of described storage Join the frequency corresponding to object information and be sent to described terminal 81；Or, access link or first by described first and access script Access link with described second or the second access script carries out the matching analysis, obtain the matching result information of correspondence, and search institute There is the frequency corresponding to described matching result information in that states in server 80 storage under described network under test, deposits according to described The frequency corresponding to described matching result information that exists under described network under test of storage determines the safety of described network under test, The safety of the described network under test determined is sent to described terminal 81.

The most alternatively,

Described terminal 81, is additionally operable to send the 4th acquisition request to described server 80, and described 4th acquisition request includes Described network attack data and/or described operation exception data, described 4th acquisition request is used for obtaining in described server 80 The frequency corresponding to described network attack data and/or described operation exception data is there is in store under described network under test； Or, for obtain described server 80 according to storage exist under described network under test described network attack data and/or The safety of the described network under test that the frequency corresponding to described operation exception data determines；Receive described server 80 according to institute State obtain request return described storage under described network under test, there are described network attack data and/or described operation is different The frequency corresponding to regular data, and according to described storage exist under described network under test described network attack data and/or The frequency corresponding to described operation exception data determines the safety of described network under test；Or, receive described server 80 According to the described safety obtaining the described network under test that request returns.

Described server 80, is additionally operable to receive the 4th acquisition request that described terminal 81 sends；Described 4th obtains request Under described network under test, described network attack data and/or described operation is there is for obtain in described server 80 storage The frequency corresponding to abnormal data；Or, for obtaining described server 80 existing under described network under test according to storage The safety of the described network under test that the frequency corresponding to described network attack data and/or described operation exception data determines； Responding the described 4th and obtain request, there is described network attack in that searches in described server 80 storage under described network under test The frequency corresponding to data and/or described operation exception data, and by described for existing under described network under test of described storage The frequency corresponding to network attack data and/or described operation exception data is sent to described terminal 81；Or, search described clothes In business device 80, storage exists corresponding to described network attack data and/or described operation exception data under described network under test The frequency, and under described network under test, there is described network attack data and/or described operation exception according to described storage The frequency corresponding to data determines the safety of described network under test, and the safety of the described network under test determined is sent to institute State terminal 81.

The most alternatively,

Described terminal 81, is additionally operable to when detecting that described terminal support connects at least one available network, to described clothes Business device 80 sends the network security verification request of correspondence, and wherein, the request of described network security verification includes and described available network Corresponding network identity, the corresponding different network identity of different available networks；Receive described server 80 according to described network The safe object information corresponding with described network identity that security authentication request returns；According to described safe object information and described Network identity, is shown to the network attended operation interface preset by described available network.

Described server 80, is additionally operable to receive the network security verification request that described terminal 81 sends；Described network security Checking request includes the network identity that at least one available network that described terminal support connects is corresponding, different available networks pair Answer different network identities；Respond described network security verification information, the safety knot corresponding with described network identity that will search Really information is sent to described terminal 81, in order to described terminal 81 knows the safety of each available network.

Those of ordinary skill in the art are it is to be appreciated that combine the list of each example that the embodiments described herein describes Unit and algorithm steps, it is possible to electronic hardware, computer software or the two be implemented in combination in, in order to clearly demonstrate hardware With the interchangeability of software, the most generally describe composition and the step of each example according to function.This A little functions perform with hardware or software mode actually, depend on application-specific and the design constraint of technical scheme.Specially Industry technical staff can use different methods to realize described function to each specifically should being used for, but this realization is not It is considered as beyond the scope of this invention.

Those skilled in the art is it can be understood that arrive, for convenience of description and succinctly, foregoing description be System, terminal and the specific works process of unit, be referred to the corresponding process in preceding method embodiment, do not repeat them here.

In several embodiments provided herein, it should be understood that disclosed system, terminal and method, permissible Realize by another way.Such as, device embodiment described above is only schematically, such as, and described unit Dividing, be only a kind of logic function and divide, actual can have other dividing mode, the most multiple unit or assembly when realizing Can in conjunction with or be desirably integrated into another system, or some features can be ignored, or does not performs.It addition, it is shown or beg for The coupling each other of opinion or direct-coupling or communication connection can be the INDIRECT COUPLING by some interfaces, device or unit Or communication connection, it is also possible to be electric, machinery or other form connect.

The described unit illustrated as separating component can be or may not be physically separate, shows as unit The parts shown can be or may not be physical location, i.e. may be located at a place, or can also be distributed to multiple On NE.Some or all of unit therein can be selected according to the actual needs to realize embodiment of the present invention scheme Purpose.

It addition, each functional unit in each embodiment of the present invention can be integrated in a processing unit, it is also possible to It is that unit is individually physically present, it is also possible to be that two or more unit are integrated in a unit.Above-mentioned integrated Unit both can realize to use the form of hardware, it would however also be possible to employ the form of SFU software functional unit realizes.

If described integrated unit realizes and as independent production marketing or use using the form of SFU software functional unit Time, can be stored in a computer read/write memory medium.Based on such understanding, technical scheme is substantially The part in other words prior art contributed, or this technical scheme completely or partially can be with the form of software product Embodying, this computer software product is stored in a storage medium, including some instructions with so that a computer Equipment (can be personal computer, server, or the network equipment etc.) performs the complete of method described in each embodiment of the present invention Portion or part steps.And aforesaid storage medium includes: USB flash disk, portable hard drive, read only memory (ROM, Read-Only Memory), random access memory (RAM, Random Access Memory), magnetic disc or CD etc. are various can store journey The medium of sequence code.

The above, the only detailed description of the invention of the present invention, but protection scope of the present invention is not limited thereto, and any Those familiar with the art, in the technical scope that the invention discloses, can readily occur in the amendment of various equivalence or replace Changing, these amendments or replacement all should be contained within protection scope of the present invention.Therefore, protection scope of the present invention should be with right The protection domain required is as the criterion.

Claims

1. the method for an internet security management, it is characterised in that described method includes:

Terminal to server sends the first acquisition request；

Receive described server and obtain, according to described first, first network access information and the second network access letter that request returns Breath, described first network accesses information and refers to that what described server stored carries out network according to the default network address under network under test Access the produced network access information of operation, described second network access information refer to that described server stores at preset security Carry out network according to the default network address under network and access the produced network access information of operation, described network access information bag Include access script or access link；

Access information and the matching analysis of described second network access information according to described first network, determine described in treat survey grid The safety of network.

2. the method for claim 1, it is characterised in that described basis accesses information and described the to described first network The matching analysis of two network access informations, determines the safety of described network under test, including:

By accessing script or accessing the visit in link and described second network access information in described first network access information Ask that script or access link carry out the matching analysis, obtain the matching result information of correspondence；

If there is default access in described matching result information to distort information, it is determined that described network under test is unsafe net Network；Or, if there is not default access in described matching result information to distort information, it is determined that described network under test is peace Whole network or possible secure network.

3. the method for claim 1, it is characterised in that described basis accesses information and described the to described first network The matching analysis of two network access informations, determines the safety of described network under test, including:

The the second acquisition request sent including described matching result information to described server；Described second obtains request uses Under described network under test, the frequency corresponding to described matching result information is there is in obtain storage in described server, or Under described network under test, the frequency corresponding to described matching result information is there is according to store for obtaining described server The safety of the described network under test determined；

Receive described server according to described second obtain request return described storage under described network under test, there is institute State the frequency corresponding to matching result information, and believe according to the described matching result that exists under described network under test of described storage The frequency corresponding to breath determines the safety of described network under test；Or, receiving described server please according to described second acquisition Ask the safety of the described network under test of return.

4. the method for claim 1, it is characterised in that described basis accesses information and described the to described first network The matching analysis of two network access informations, determines the safety of described network under test, including:

Sending the 3rd acquisition request to described server, described 3rd acquisition request is used for indicating described server by described first Accessing script or access the access script in link and described second network access information or access chain in network access information Tap into row the matching analysis, obtain the matching result information of correspondence, search and send in described server storage described to be measured The frequency corresponding to described matching result information is there is under network；Or, it is used for indicating described server by described first network The access script accessed in script or access link and described second network access information or access chain in access information tap into Row the matching analysis, obtains the matching result information of correspondence, there is described matching result according to store under described network under test The frequency corresponding to information determines the safety of described network under test, and the safety of the described network under test determined is sent to Described terminal；

Receive described server according to described 3rd obtain request return described storage under described network under test, there is institute State the frequency corresponding to matching result information, and believe according to the described matching result that exists under described network under test of described storage The frequency corresponding to breath determines the safety of described network under test；Or, receiving described server please according to described 3rd acquisition Ask the safety of the described network under test of return.

5. the method as described in claim 3 or 4, it is characterised in that described existing under described network under test according to storage The frequency corresponding to described matching result information determines the safety of described network under test, including:

6. a terminal, it is characterised in that described terminal includes:

Transmitting element, for sending the first acquisition request to server；

Receive unit, obtain, according to described first, the first network that request returns access information and for receiving described server Two network access informations, described first network access that information refers to that described server stores under network under test according to default network Address carries out network and accesses the produced network access information of operation, and described second network access information refers to that described server stores Under preset security network, carry out network according to the default network address access the produced network access information of operation, described net Network accesses information and includes accessing script or accessing link；

Processing unit, for accessing information and the matching analysis of described second network access information according to described first network, Determine the safety of described network under test.

7. terminal as claimed in claim 6, it is characterised in that

Described processing unit, specifically for by the access script in described first network access information or access link and described the Access script or access link in two network access informations carry out the matching analysis, obtain the matching result information of correspondence；If There is default access in described matching result information and distort information, it is determined that described network under test is insecure network；Or, If there is not default access in described matching result information to distort information, it is determined that described network under test be secure network or Possible secure network.

8. terminal as claimed in claim 6, it is characterised in that

Described processing unit, specifically for by the access script in described first network access information or access link and described the Access script or access link in two network access informations carry out the matching analysis, obtain the matching result information of correspondence；To institute State the second acquisition request that server sends including described matching result information；Described second acquisition request is used for obtaining institute There is the frequency corresponding to described matching result information in that states in server storage under described network under test, or is used for obtaining Under described network under test, the institute that the frequency corresponding to described matching result information determines is there is in described server according to storage State the safety of network under test；Receive described server treating described according to the described second described storage obtaining request return The frequency corresponding to described matching result information, and existing under described network under test according to described storage is there is under survey grid network The frequency corresponding to described matching result information determines the safety of described network under test；Or, receive described server according to Described second safety obtaining the described network under test that request returns.

9. terminal as claimed in claim 6, it is characterised in that

Described processing unit, for sending the 3rd acquisition request to described server, described 3rd acquisition request is used for indicating institute State server by the access script in described first network access information or to access in link and described second network access information Access script or access link carry out the matching analysis, obtain correspondence matching result information, search and send described server Middle storage under described network under test, there is the frequency corresponding to described matching result information；Or, it is used for indicating described clothes Business device is by accessing script or accessing the visit in link and described second network access information in described first network access information Ask script or access link carry out the matching analysis, obtain correspondence matching result information, according to storage at described network under test The lower frequency existed corresponding to described matching result information determines the safety of described network under test, and described to be measured by determine The safety of network is sent to described terminal；Receive described server according to the described 3rd described storage obtaining request return Under described network under test, there is the frequency corresponding to described matching result information, and treat survey grid according to described storage described There is the frequency corresponding to described matching result information under network and determine the safety of described network under test；Or, receive described clothes Business device is according to the described 3rd safety obtaining the described network under test that request returns.

10. terminal as claimed in claim 8 or 9, it is characterised in that

Described processing unit, if being in preset first threshold value scope specifically for the described frequency, it is determined that described network under test is Secure network；If the described frequency is in default Second Threshold scope, it is determined that described network under test is possible secure network；If institute State the frequency and be in default 3rd threshold range, it is determined that described network under test is insecure network.